Search CVE reports
111 – 120 of 222 results
Some fixes available 11 of 12
The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary...
6 affected packages
firefox, iceape, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Some fixes available 11 of 12
Heap-based buffer overflow in the _cairo_pen_init function in Mozilla Firefox 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to execute arbitrary code via a large stroke-width...
6 affected packages
firefox, iceape, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Some fixes available 11 of 12
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allow remote attackers to cause a denial of service...
6 affected packages
firefox, iceape, lightning-sunbird, midbrowser, mozilla-thunderbird, xulrunner
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not properly implement JavaScript onUnload handlers, which allows remote attackers to run certain JavaScript code and access the location DOM hierarchy in the context of...
3 affected packages
firefox, mozilla-thunderbird, thunderbird
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| thunderbird | — | — | — | — |
Multiple heap-based buffer overflows in Mozilla Thunderbird before 1.5.0.9 and SeaMonkey before 1.0.7 allow remote attackers to execute arbitrary code via (1) external message modies with long Content-Type headers or (2)...
1 affected package
mozilla-thunderbird
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| mozilla-thunderbird | — | — | — | — |
Some fixes available 12 of 13
Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to bypass cross-site scripting (XSS) protection by changing the src attribute of an IMG...
7 affected packages
firefox, firefox-3.0, iceape, lightning-sunbird, midbrowser...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| firefox-3.0 | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Some fixes available 12 of 13
Use-after-free vulnerability in the LiveConnect bridge code for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service...
7 affected packages
firefox, firefox-3.0, iceape, lightning-sunbird, midbrowser...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| firefox-3.0 | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Some fixes available 12 of 13
Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to gain privileges and install malicious code via the watch...
7 affected packages
firefox, firefox-3.0, iceape, lightning-sunbird, midbrowser...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| firefox-3.0 | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Some fixes available 3 of 4
Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute...
4 affected packages
firefox, iceape, mozilla-thunderbird, xulrunner
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| iceape | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |
Some fixes available 12 of 13
The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 overwrites memory instead of exiting when the floating point precision is reduced, which...
7 affected packages
firefox, firefox-3.0, iceape, lightning-sunbird, midbrowser...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| firefox | — | — | — | — |
| firefox-3.0 | — | — | — | — |
| iceape | — | — | — | — |
| lightning-sunbird | — | — | — | — |
| midbrowser | — | — | — | — |
| mozilla-thunderbird | — | — | — | — |
| xulrunner | — | — | — | — |